Submeter #372744: rainrocka xinhu v2.6.3 Cross Site Scriptinginformação

Título	rainrocka xinhu v2.6.3 Cross Site Scripting
Descrição	A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in Xinhu RockOA v2.6.3, existing in the Callback parameter of /webmain/public/upload/tpl_upload.html.
Fonte	⚠️ https://github.com/rainrocka/xinhu/issues/7
Utilizador	jiashenghe (UID 39445)
Submissão	11/07/2024 08h20 (há 2 anos)
Moderação	20/07/2024 08h23 (9 days later)
Estado	Aceite
Entrada VulDB	271994 [Xinhu RockOA 2.6.3 tpl_upload.html okla callback Script de Site Cruzado]
Pontos	16

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!